Overview

overview

5

Static

static

1

newpage/ac...ass.js

windows7-x64

1

newpage/ac...ass.js

windows10-2004-x64

1

newpage/ac...x.html

windows7-x64

1

newpage/ac...x.html

windows10-2004-x64

5

newpage/ge...ass.js

windows7-x64

1

newpage/ge...ass.js

windows10-2004-x64

1

newpage/gm...ass.js

windows7-x64

1

newpage/gm...ass.js

windows10-2004-x64

1

newpage/gm...2.html

windows7-x64

1

newpage/gm...2.html

windows10-2004-x64

1

newpage/index2.js

windows7-x64

1

newpage/index2.js

windows10-2004-x64

1

newpage/page2.html

windows7-x64

1

newpage/page2.html

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ffc8cc83f4485eec7969b54f44272329_JaffaCakes118

  • Size

    230KB

  • Sample

    240421-vx2y2afh79

  • MD5

    ffc8cc83f4485eec7969b54f44272329

  • SHA1

    c0d47a3c19268f927bccb34bfd29182dc9c4c84a

  • SHA256

    7f542af27f141be2d14412c913adb9e8bc9601e9647651eae3c373ec5f6ee813

  • SHA512

    c834364dcb5cfdff52394491c286081d962ab1a9859cac4ce668b19def8313c919804e784c38cb9b01fca294fa09209c1219e88cc7b65e10f42c89dfd67aad3f

  • SSDEEP

    6144:W8Kmg6Lsvzx60/FL6U0eLdbCMFvetHAhaJ0:hL6E09LPzQKv0HeaJ0

Score
5/10
microsoftphishing

Malware Config

Targets

    • Target

      newpage/account/geoplugin.class.php

    • Size

      4KB

    • MD5

      c8ea1e960b48a620c00bc65d525a721c

    • SHA1

      6e16a7a95436ec6f1739ae80d121e77661880634

    • SHA256

      533b46938dc1aa03fa2a8a6ab5977fbdc8b115c0b106f921b0fc4ec637fb35cc

    • SHA512

      2306c31923f47f7b90bf1f7067519e289c5de4aee2f6b4b2f925c01f57acad0b0a30867b7b025a2222b4d23ec390b265299f4bfb7e2c41d51962c609dbd80473

    • SSDEEP

      96:zQapMrp1cwAzq1Y0qh2iCYqWGXUQaVc96oAeQeLN/YoLQhyiHQG:0apMrS12iGWGXucr9M

    Score
    1/10
    behavioral1behavioral2

    • Target

      newpage/account/index.php

    • Size

      19KB

    • MD5

      ca02d1d6af46ed775ab70ab300f6c8bb

    • SHA1

      f3a9aa1adf47521db3f98292b2f416df90e7b6bc

    • SHA256

      cc2663af10dfd3648f940a6f993ed2bdc0d842f1639226c302240c433a19c542

    • SHA512

      3e39a674ba9308a08079f5017880d9c739c30f2622ab845939b502ef5d03f2005e9bceefa8ae1a946fb9d9a1e53691258840a425261d8c2fedbdb28f68d44136

    • SSDEEP

      384:FVT4djdEhbRGENC99ItV4OkLsPA2YaA9dmeyi+:450b8Ec91O4rQ

    Score
    5/10
    microsoftphishing
    behavioral3behavioral4

    • Target

      newpage/geoplugin.class.php

    • Size

      4KB

    • MD5

      c8ea1e960b48a620c00bc65d525a721c

    • SHA1

      6e16a7a95436ec6f1739ae80d121e77661880634

    • SHA256

      533b46938dc1aa03fa2a8a6ab5977fbdc8b115c0b106f921b0fc4ec637fb35cc

    • SHA512

      2306c31923f47f7b90bf1f7067519e289c5de4aee2f6b4b2f925c01f57acad0b0a30867b7b025a2222b4d23ec390b265299f4bfb7e2c41d51962c609dbd80473

    • SSDEEP

      96:zQapMrp1cwAzq1Y0qh2iCYqWGXUQaVc96oAeQeLN/YoLQhyiHQG:0apMrS12iGWGXucr9M

    Score
    1/10
    behavioral5behavioral6

    • Target

      newpage/gmail/geoplugin.class.php

    • Size

      4KB

    • MD5

      c8ea1e960b48a620c00bc65d525a721c

    • SHA1

      6e16a7a95436ec6f1739ae80d121e77661880634

    • SHA256

      533b46938dc1aa03fa2a8a6ab5977fbdc8b115c0b106f921b0fc4ec637fb35cc

    • SHA512

      2306c31923f47f7b90bf1f7067519e289c5de4aee2f6b4b2f925c01f57acad0b0a30867b7b025a2222b4d23ec390b265299f4bfb7e2c41d51962c609dbd80473

    • SSDEEP

      96:zQapMrp1cwAzq1Y0qh2iCYqWGXUQaVc96oAeQeLN/YoLQhyiHQG:0apMrS12iGWGXucr9M

    Score
    1/10
    behavioral7behavioral8

    • Target

      newpage/gmail/page2.php

    • Size

      2KB

    • MD5

      18cb0a97908f8ce90969ff89f49d3050

    • SHA1

      542ac8602c7f9165f1eddc0e87feea2ea8e34eee

    • SHA256

      473cfa34f7717c33cca8860e957596471c223f8a51c753dd67e50bd4cdf330a3

    • SHA512

      78f09496da0c743e5159cf7947b9a049e17f0076cfdac1ce76f3a31130f90e56a1e0c51c06da913e97ff586b67779548ef0b9aed099890018b81c299f34f1bf9

    Score
    1/10
    behavioral10behavioral9

    • Target

      newpage/index2.php

    • Size

      20KB

    • MD5

      a6de47232a5994d31f456c9cc915c5d6

    • SHA1

      a4095e15d75d49bf76761cf6972e3085dbd6e5fc

    • SHA256

      e22c3bba7af9ebfd70b043294c5edac7772892985207ddbc771d31f657d06d45

    • SHA512

      d192248284fb5eddd10dd2e2baf46f588c113c399942d4c58c1f95aacf8f029ae594b3780ce193e87453bafebe06719b5d7e2e30206e5de74ab5d5617ebd6139

    • SSDEEP

      192:x6CRm3/0xxO64FlNbdNgwSmDmwc0bu0isgfYrnaurGecn:ACs/0xxOfRXmw1ninArnauKdn

    Score
    1/10
    behavioral11behavioral12

    • Target

      newpage/page2.php

    • Size

      2KB

    • MD5

      a498989bfed1c858f0c6082c94a28dbd

    • SHA1

      f619017508b247b657e3a62a4799161284a16c4e

    • SHA256

      87082adb6c9478f94bec74b4a2ce69b0018e9ca74f00db0496f7a89e75bf5a9b

    • SHA512

      e5471d58451dc1f87c79fa667eb6124e206f00969cfa877de4aac9d0b0901844ea059dcc82414eee4dcd23bca6854b6dea5490e5d1d25d3ac433fc189961269a

    Score
    1/10
    behavioral13behavioral14

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

3
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks